- Version 0.7 of the OSSEC HIDS is now available!
-
This is one of the most improved versions so far. It now includes
support for squid, pure-ftpd, postfix and AIX ipsec logs (in addition
to a lot of improvements to the previous rules).
The integrity checking engine now allows granular options, where
you can specify exactly what options you want to monitor (checksum,
size, ownership, etc).
The rootkit detection had a lot of improvements too, reducing false
positives on most of the systems and with a lot of new anomaly
checks to detect kernel level rootkits.
We also have a new website and the installation in 4 different
languages (portuguese, english, german and turkish).
In addition to that, this version includes a lot of bug fixes
and performance improvements.
Full changelog: http://www.ossec.net/announcements/v07-2006-03-29.txt
To download the new version:
http://www.ossec.net/files/ossec-hids-0.7.tar.gz
Use our mailling list if you have any questions, suggestions or
comments :
http://www.ossec.net/en/mailing_lists.html
-